The Global Unix Options section displays the currently configured options for Unix-enabling users and groups.
Click Modify Global Unix Options to change these settings.
Note: Safeguard Authentication Services uses the Global Unix Options when enabling users and groups for Unix login.
| Option | Description |
|---|---|
|
Require unique User Names |
Select to require a unique user login name attribute within the forest. |
|
Require unique UID Numbers |
Select to require a unique user's Unix ID (UID) number within the forest. |
|
Minimum UID Number |
Enter a minimum value for the Unix User ID (UID) number. Typically, you set this to a value higher than the highest UID among local Unix users to avoid conflicts with users in Active Directory and local user accounts. |
|
Maximum UID Number |
Enter a maximum value for the Unix User ID (UID) number. Typically, you would not change this value unless you have a legacy Unix platform that does not support the full 32-bit integer range for UID number. |
|
Default Primary GID Number |
Enter the default value for the Primary GID number when Unix-enabling a user. |
|
Set primary GID to UID |
Select to set the primary GID number to the User ID number. |
|
Default Comments (GECOS) |
Enter any text in this box. |
|
Default Login Shell |
Enter the default value for the login shell used when Unix-enabling a user. |
|
Default Home Directory |
Enter the default prefix used when generating the home directory attribute when Unix-enabling a user. The default value is /home/; use a different value if your Unix user home directories are stored in another location on the file system. Safeguard Authentication Services uses the user's effective Unix name when generating the full home directory path. |
|
Use lowercase User Name for Home Directory |
Select to use a lower-case representation of the user's effective Unix name when generating the full home directory path as a user is Unix-enabled. |
| Option | Description |
|---|---|
| Require unique Group Names | Select to require a unique Unix group name attribute within the forest. |
| Require unique GID Numbers | Select to require a unique Unix Group ID (GID) attribute within the forest. |
| Minimum GID Number |
Enter the minimum value for the Unix Group ID (GID). Typically, this is set to a value higher than the highest GID among local Unix groups to avoid conflicts with groups in Active Directory and local group accounts. |
| Maximum GID Number |
Enter the maximum value for the Unix Group ID (GID). Typically, you would not change this value unless you have a legacy Unix platform that does not support the full 32-bit integer range for GID. |
These options control the algorithms used to generate unique user and group IDs.
| Option | Description |
|---|---|
| GUID Hash |
An ID generated from a hash of the user or group object GUID attribute. This is a fast way to generate an ID that is usually unique. If the generated value conflicts with an existing value, the ID is re-generated by searching the forest. |
| Samba Algorithm |
An ID generated from the SID of the domain and the RID of the user or group object. This method works well when there are few domains in the forest. If the generated value conflicts with an existing value, the ID is re-generated by searching the forest. |
| Legacy Search Algorithm | An ID generated by searching for existing ID values in the forest. This method generates an ID that is not currently in use. |
Modifications you make to these Global Unix Options take effect after you restart the Microsoft Management Console (MMC).
BEST PRACTICE: It is a best practice to either use the generated default IDs or set the ID manually. Mixing the two methods can lead to ID conflicts.
to specify a folder location where you want to write the log files.